Tag: adware

What is MacCaptain?
MacCaptain is advertised as a program that displays coupons for sites you are visiting and competitive prices when you are viewing product pages at sites like Amazon. Though this may sound like a useful service, the MacCaptain program can be intrusive and will display ads whether you want them to or not.

When installed, the MacCaptain browser extension will display advertising banners, pop-up advertisements and in-text ads, stating that they are brought to you by “MacCaptain”. These ads are aimed to promote the installation of additional questionable content including web browser toolbars, optimization utilities and other products, all so the MacCaptain publisher can generate pay-per-click revenue.

MacCaptain Homepage

When infected with MacCaptain the common symptoms include:
– Advertising banners are injected with the web pages that you are visiting.
– Random web page text is turned into hyperlinks.
– Browser popups appear which recommend fake updates or other software.
– Other unwanted adware programs might get installed without the user’s knowledge.

Uninstall MacCaptain Google Chrome Extension;
You can easily uninstall the the MacCaptain extension by selecting Window > Extensions > Find the MacCaptain Extension (it may be listed as another name) > click the Trash Can icon.(See Remove Extensions from Chrome for more detailed instructions)

What is MacVX?
MacVX is an application that should enable faster streaming of online videos. At least that is what developers of this program are claiming. Moreover, this application is compatible with all major browsers. However, there are a couple of interesting facts that you should know about this program. In fact, MacVX is recognized as an adware for a couple of reasons. Firstly, this program is free; therefore, in order to make money, its developers are cooperating with various advertisers. Secondly, this questionable application may travel as an extra attachment together with other freewares. Thirdly, MacVX ads may redirect you to an unsafe website that you do not want to visit. Finally, this program may track your online activities and use this information for various commercial purposes.

What is Celipsow?
Celipsow is a program that is used to monetized software installation. It is a platform that generates revenue for developer and helps in the distribution of other program. The bad thing about Celipsow is some adware authors are utilizing this program to deploy malicious application to Mac OS X systems.

To be able to spread adware, authors of potentially unwanted program uses Celipsow to bundle their software into legitimate ones. In most cases, users are not aware that installing desired programs may contaminate their computers with various adware. Celipsow are commonly linked to freeware and third-party software.

Once Celipsow gets installed on your Mac, it will install the host program and deliberately load other adware in the background. It installs unknown software without asking for user’s permission. Celipsow also alters various browser settings without the user’s permission.

2. Once you have located Celipsow, click on Remove or Uninstall, to get rid of it.

3. Close the browser and proceed to the next steps.

STEP 2: Delete Malicious Files that have installed Celipsow

Locate and delete the following files from ~/Library/LaunchAgents and ~/Library/Application Support;

unknown.download.plist
unknown.ltvbit.plist
unknown.update.plist

The term unknown is just a representation of the actual malware name. It is normally an unfamiliar file name such as the following; Celipsow, InstallMac, Manroling, Genieo, Gwenrose, Montageobox, Nariabox, Epolife, Feelbegin, Inkeeper, Javeview, Jakecares, or Leperdvil.

If you cannot find the specified file, please look for any unfamiliar or suspicious files/browser extensions. It may be the one causing the Celipsow to be present on your Mac. Arranging all items to see the most recent ones may also help you identify recently installed unfamiliar files.

What is Nariabox?Nariabox.com is classified as a browser hijacker that installed by third parties. Once attacked, Nariabox.com reports a number of fake massages and display various ads on your computer without your permission. In most cases, Nariabox.com comes into your computer without any notification. The browser hijacker can be installed on Google Chrome, Safari and Mozilla Firefox and other browsers. Nariabox.com has the ability of modifying your default settings and search engine. You may notice that your homepage will be replaced by Nariabox.com. Thus, Nariabox.com is able to redirect you to fake web pages without your approval.

In addition, Nariabox.com is interested in collecting your online activities with the purpose of stealing your sensitive data. What you do on your compromised machine will be exposed to remote hijackers in the background. Your privacies like credit card number and password, emails address and phone number will be stole. Nariabox.com is closely related to cyber criminals. In order to completely take over your computer, Nariabox.com will install its related browser extensions on your system secretly. Your Mac will be compromised by more and more infections.